Method of Controlling Access

1. A method of controlling access to an element within one of a bus system and a network, comprising: identifying an external device that establishes a communication link with the one of the bus system and the network via a gateway, the external device being identified by a device-specific identifier transmitted to one of a bus manager and a network manager, wherein one of the device-specific identifier and a data record allocated to the device-specific identifier contains information regarding a class membership of the external device, wherein the information includes at least one of: a manufacturer identifier that identifies a manufacturer of the external device, a model identifier that identifies a model of the external device, or a serial number of the external device; authenticating the external device on the basis of a digital key; and after the authenticating, granting the external device access to the element of the one of the bus system and the network in accordance with the class membership, wherein a scope of the access to the element varies depending on the class membership of the external device.

2. The method as recited in claim 1 , wherein: for the access, the external device logs in at the gateway using a log-in message that is transmitted, together with the device-specific identifier, to the one of the bus manager and the network manager, and wherein the external device further transmits a device class identifier in addition to the device-specific identifier.

3. The method as recited in claim 1 , wherein: a joint key agreement is reached between the external device and the one of the bus manager and the network manager.

4. The method as recited in claim 3 , wherein: the joint key agreement is reached through an exchange of parameters including primary numbers, random numbers, and operations performed on the primary numbers and the random numbers.

5. The method as recited in claim 3 , wherein: the Diffie-Hellmann technique is used for the joint key agreement.

6. The method as recited in claim 3 , further comprising: after the joint key agreement between the external device and the one of the bus manager and the network manager, authenticating according to a challenge-response procedure.

7. The method as recited in claim 2 , wherein: the gateway is set up to perform a signal conversion according to the ISO/OSI layer model in at least one of a physical layer and a higher layer.

8. The method as recited in claim 2 , wherein: the gateway is set up to have a firewall functionality.

9. The method as recited in claim 8 , wherein: the authenticating is used to ascertain which resources of the one of the bus system and the network may be at least one of used and controlled by the external device and in what manner this may be done.

10. The method as recited in claim 8 , further comprising: causing the one of the bus manager and the network manager to configure the firewall functionality on the basis of an access authorization determined thereby, so that the firewall functionality performs one of an enabling and a blocking of a resource of the one of the bus system and the network according to the access authorization thus determined.

11. The method as recited in claim 10 , wherein: the one of the enabling and the blocking is performed on the basis of one of a source address and a destination address of a data packet.

12. The method as recited in claim 10 , wherein: the firewall functionality filters certain commands of the external device according to the access authorization determined.

13. The method as recited in claim 10 , wherein: the access authorization is negotiated between the external device and the one of the bus manager and the network manager.

14. The method as recited in claim 1 , wherein: instead of the external device, one of an external bus system and an external network establishes a communication link with the one of the bus system and the network to gain access to the element of the one of the bus system and the network.

15. The method as recited in claim 1 , wherein: in addition to the external device, one of an external bus system and an external network establishes a communication link with the one of the bus system and the network to gain access to the element of the one of the bus system and the network.